Skip to main content


Eclipse Community Forums
Forum Search:

Search      Help    Register    Login    Home
Home » Language IDEs » Java Development Tools (JDT) » Server DTLS X509, client certificate no trust(client certificate no trust)
Server DTLS X509, client certificate no trust [message #1872944] Fri, 29 November 2024 15:40 Go to next message
Nick Kulikov is currently offline Nick KulikovFriend
Messages: 1
Registered: November 2024
Junior Member
Why do I get a 14 sec delay when connecting to the server?
What DTLS settings should I use to reduce the connection time to 3 sec?

server on AWS
californium.scandium: 3.12.1
DTLS server configuration with X509 (CA, TRUST)
Signatures
CA - SHA384withECDSA
TRUST - SHA384withRSA
Server - SHA256withECDSA

org.eclipse.californium.elements.config.Configuration - DEFAULT
client has the same config, certificate for tests created:


Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:f5:39:16:2d:65:54:9f:e2:b6:20:b6:a7:d7:3d:8b:83:e6:95:54
Signature Algorithm: ecdsa-with-SHA256
Issuer: C = UA, ST = Kiyv, L = Kiyv, O = Tnihgsboard.inc, OU = Coaps, CN = coap-client-openssl, emailAddress = nick@thingsboard.io
Validity
Not Before: Nov 6 15:32:52 2024 GMT
Not After : Nov 6 15:32:52 2025 GMT
Subject: C = UA, ST = Kiyv, L = Kiyv, O = Tnihgsboard.inc, OU = Coaps, CN = coap-client-openssl, emailAddress = nick@thingsboard.io
Subject Public Key Info:
Public Key Algorithm: id-ecPublicKey
Public-Key: (256 bit)
pub:
04:a3:5c:4a:d6:f3:79:48:0a:5f:8f:b3:45:39:6b:
a4:12:58:a9:5a:81:8e:1b:65:0c:31:5f:43:21:b9:
98:07:00:27:9d:87:5a:69:12:4e:0f:38:ea:78:0d:
e5:f0:1d:53:93:31:3f:50:2c:f5:57:fb:54:c7:8b:
10:25:4f:29:30
ASN1 OID: prime256v1
NIST CURVE: P-256
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:07:4F:2B:1C:0C:A4:BD:38:6A:73:E9:D3:85:B8:B5:A2:CE:CD:1F
X509v3 Authority Key Identifier:
5D:07:4F:2B:1C:0C:A4:BD:38:6A:73:E9:D3:85:B8:B5:A2:CE:CD:1F
X509v3 Basic Constraints: critical
CA:TRUE
Signature Algorithm: ecdsa-with-SHA256
Signature Value:
30:44:02:20:6f:8f:d9:68:67:74:fd:b3:da:f1:a1:38:b7:0a:
28:8d:4b:29:b5:45:de:1d:b0:2e:b6:97:b5:75:6d:6d:fe:17:
02:20:1e:5e:ea:2d:ef:ca:1c:0f:a1:b5:ff:1f:93:53:4f:e9:
6e:78:72:90:6e:0d:63:ba:14:d9:80:f7:ae:57:35:13

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Report message to a moderator

Re: Server DTLS X509, client certificate no trust [message #1872953 is a reply to message #1872944] Fri, 29 November 2024 22:09 Go to previous message
Erik BrangsFriend
Messages: 55
Registered: February 2010
Member
It sounds like you're using Eclipse Californium. You can find their community page at https://eclipse.dev/californium/#community . This forum is for the Eclipse Java Develoment tools for the Eclipse IDE.

Report message to a moderator

Previous Topic:How to add/update an environment variable without Eclipse restart?
Next Topic:Refactoring Method Inline got worse recently
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ]

Current Time: Wed Feb 05 04:37:39 GMT 2025

Powered by FUDForum. Page generated in 0.24810 seconds
.:: Contact :: Home ::.

Powered by: FUDforum 3.0.2.
Copyright ©2001-2010 FUDforum Bulletin Board Software

Back to the top

Sign up to our Newsletter

A fresh new issue delivered monthly